Lucene search
China National Vulnerability DatabaseCNVD-2021-77465HistorySep 26, 2021 - 12:00 a.m.
IBM Security Verify Bridge Information Disclosure Vulnerability (CNVD-2021-77465)
2021-09-2600:00:00
China National Vulnerability Database
www.cnvd.org.cn
5
ibm
security verify bridge
information disclosure
vulnerability
sensitive information
certificate validation
ldap
active directory
ibm cloud
attack
EPSS
0.001
Percentile
36.6%
IBM Security Verify Bridge is an IBM application component of International Business Machines (IBM), Inc. Provides IBM Cloud access to user attributes and authentication that are controlled by the customer’s local LDAP or Active Directory. IBM Security Verify Bridge has an information disclosure vulnerability that stems from the acquisition of sensitive information due to incorrect certificate validation, which can be exploited by an attacker to Obtain sensitive information.
Related
prion
prion
Information disclosure
2021-09-23 17:15:00
cve
cve
CVE-2021-38864
2021-09-23 17:15:12
cvelist
cvelist
CVE-2021-38864
2021-09-23 17:10:38
nvd
nvd
CVE-2021-38864
2021-09-23 17:15:12
